420d8afd2732b14910b30f3a6d61dcb3160d8612a56861713ef7bafc8c186b3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

420d8afd2732b14910b30f3a6d61dcb3160d8612a56861713ef7bafc8c186b3fN
Size

39KB
Sample

241009-l6892asdra
MD5

a41eca336ef506c937d1e05d3bc312f0
SHA1

13ed5221d6baa41205d6c341dbe14bf4d410a46c
SHA256

420d8afd2732b14910b30f3a6d61dcb3160d8612a56861713ef7bafc8c186b3f
SHA512

f831561d097a7d108983ba17d602e8047cf2a442f7ace86e7205934775feea7f8f20baeb0a74d9b96e6a3c995ce3ab31dde024278507d3f6f876676b2064503e
SSDEEP

768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJjWHf:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gi

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  420d8afd2732b14910b30f3a6d61dcb3160d8612a56861713ef7bafc8c186b3fN
- Size
  
  39KB
- MD5
  
  a41eca336ef506c937d1e05d3bc312f0
- SHA1
  
  13ed5221d6baa41205d6c341dbe14bf4d410a46c
- SHA256
  
  420d8afd2732b14910b30f3a6d61dcb3160d8612a56861713ef7bafc8c186b3f
- SHA512
  
  f831561d097a7d108983ba17d602e8047cf2a442f7ace86e7205934775feea7f8f20baeb0a74d9b96e6a3c995ce3ab31dde024278507d3f6f876676b2064503e
- SSDEEP
  
  768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjUvJjWHf:e6q10k0EFjed6rqJ+6vghzwYu7vih9Gi
Score

7^/10

discovery persistence
- Deletes itself
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence